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(54) INFORMATION PROCESSING DEVICE, INFORMATION PROCESSING METHOD AND 
PROGRAM STORAGE MEDIUM 



(57) In an information processing system and meth- 
od which enables detection processing of a revoked en- 
tity using an enabling key block (EKB), a device or a 
service provider as a revoked entity is determined on 
the basis of the enabling key block (EKB) used for key 
distribution in a tree structure. ID which enables position 
identification in the hierarchical key distribution tree is 
stored in a public key certificate and tracing processing 
using a tag of the enabling key block (EKB) is executed 
on the basis of the ID acquired from the public key cer- 
tificate, thus determining whether or not the ID is of a 
position where EKB processing (decryption) is possible 
and determining the presence/absence of revocation of 
an entity corresponding to the ID. 
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D scription 

Technical Field 

[0001] This invention relates to an information 
processing device, an information processing method 
and a program storage medium. Particularly, this inven- 
tion relates to a system for distributing an encryption 
processing key in a system involving encryption 
processing and a method therefor, and more specifically 
to a system and a method which enable efficient execu- 
tion of revocation of a specific device by using a tree- 
structured hierarchical key distribution system. 

Background Art 

[0002] Conventionally, distribution of various software 
such as game programs, audio data and image data 
(hereinafter referred to as contents) via a network such 
as the Internet or distributable storage media such as 
DVDs and CDs has been popularized. These distributed 
contents are used by receiving the data or loading the 
storage media to reproduce the data at a PC (personal 
computer) or a game machine owned by a user, or by 
storing the data to a recording device within a recording/ 
reproducing equipment appended to a PC or the like, 
such as a memory card or a hard disk, and newly repro- 
ducing the data from the storage medium. 
[0003] An information equipment such as a video 
game machine or PC has an interface for receiving a 
distributed content or accessing a DVD or CD. The in- 
formation equipment also has control means necessary 
for reproducing the content, and a RAM and a ROM 
used as memory areas for programs and data. 
[0004] Various contents such as music data, image 
data or programs are accessed from a storage medium 
in accordance with a user's instruction from an informa- 
tion equipment body such as a game machine or PC 
used as a reproducing equipment, or in accordance with 
a user's instruction through input means connected 
thereto. Alternatively, these contents are reproduced 
through a connected display or speaker. 
[0005] In general, with respect to many software con- 
tents such as game programs, music data and image 
data, the producers and sellers own the distribution 
rights. Therefore, in distributing these contents, a pre- 
determined limitation of use is provided. That is, a sys- 
tem in consideration of security is employed in which 
only an authorized user is permitted to use the software 
while unauthorized copying is prevented. 
[0006] One technique to realize the limitation of use 
by users is encryption processing of distributed con- 
tents. For example, various contents such as encrypted 
audio data, image data and game programs are distrib- 
uted via the Internet or the like, and means for d crypt- 
ing the distributed encrypted contents, that is, a decryp- 
tion key, is provided only to a p rson who has been con- 
firm d as an authorized user. 



[0007] The encrypted data can be transformed back 
to usable decrypted data (plaintext) by decryption 
processing through a predetermined procedure. Such a 
data encryption and decryption method has been con- 

5 ventionally well known, in which an encryption key is 
used for information encryption processing while a de- 
cryption key is used for decryption processing. 
[0008] There are various types of modes for the data 
encryption and decryption method using the encryption 

10 and decryption keys. One example thereof is a so-called 
common key encryption system. The common k y en- 
cryption system is adapted for setting a common key as 
an encryption key used for data encryption processing 
and as a decryption key used for decryption of data and 

15 providing the common key .used for the encryption 
processing and decryption to an authorized user, there- 
by eliminating data access by invalid users who have 
no key. A typical example of this system is DES (data 
encryption standard). 

20 [0009] The encryption and decryption keys used for 
the above-described encryption processing and decryp- 
tion can be acquired by applying a unidirectional func- 
tion such as a hash function, for example, on the basis 
of a certain password or the like. A unidirectional func- 

25 tion is a function such that it is very difficult to retroac- 
tively find an input from its output. For example, a uni- 
directional function is applied where a password decid- 
ed by a user is an input, and encryption and decryption 
keys are generated on the basis of its output. It is prac- 

30 tically impossible to retroactively find the password, 
which is the ongmal data, from the encryption and de- 
cryption keys generated in the above-described man- 
ner. 

[0010] A system tn which different algorithms are 

35 used in the processing based on the encryption key for 
encryption an;j processing based on the decryption 
key for de:'w • ■■ ^ a so-called public key encryption 
system Tn. ; n- v encryption system is a technique 
in which u"- : • • • : users use an available public key. 

40 A text to r • - • * addressed to a specified individ- 

ual, is : . ^:ng a public key issued by the 

specif ie.: • : . text encrypted by using the 

public kt. : ■ *.::ed only by using a private key 
corresp-- : - : ■ - r^iic key used in the encryption 

45 process : • : • vate key is owned only by the 

individu ... - . ■ . r, u b|j c key, the text encrypted 

by usm : • , an be decrypted only by the 

individu.i : . ite key. A typical example of 

the put • • . • ,: ■ system is the RSA (Rivest- 

50 Shamir-A:- ■• By utilizing such an encryp- 

tion sysi*-~ r - id provide a system in which 

encrypted • • • r t»- decrypted only by an author- 
ized user 

[0011] Inr— . - distribution system as described 
55 above, a metr : - employed in which a content 

is encrypted an j i -.vued through a network or stored 
onto a recording medium such as a DVD or CD, which 
is then provided, and then a content key for decrypting 
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the encrypted content is provided only a valid user. It 
has been proposed to encrypt the content key itself and 
provide the encrypted content key in order to prevent 
invalid copying of the content key so that the encrypted 
content key can be decrypted and made usable by using 5 
a decryption key which is owned only by the valid user. 
[0012] Whether a user is a valid user or not is deter- 
mined by executing authentication processing before 
the distribution of a content or content key, generally be- 
tween a content provider as a transmitter of the content 
and a user device, or between user devices which trans- 
mit and receive the content. 

[0013] However, in a certain case, for example, the 
private key of a user's device might be revealed, and an 
invalid user device might receive a content, storing that 
private key and pretending to be the invalid device. To 
cope with such a case, a key control center distributes 
a revocation list called invalid device list or blacklist con- 
taining IDs of invalid devices, to valid devices, and the 
valid devices use the revocation list to confirm whether 
ID of a communicating party is included in the list or not. 
[0014] The revocation list is prepared by listing IDs of 
invalid devices and appending the signature of the key 
issuing center for preventing falsification. The revoca- 
tion list is called CRL (certification revocation list), which 
is sequentially updated and distributed to the valid de- 
vices every time a new invalid device is generated. How- 
ever, as the number of invalid devices increases, the 
number of IDs of the invalid devices recorded in the rev- 
ocation list simply increases. Therefore, the size (data 
volume) of the list expands and the burden of distribution 
of the list data becomes heavier. Moreover, storing and 
saving the list in the valid devices as the destinations of 
distribution will be a burden on the storage space. 

Disclosure of the Invention 

[0015] In view of the foregoing problem of the 
processing burden due to the increase of the data of the 
revocation list and the problem of the storage space for 
storing the list in the device, it is an object of the present 
invention to provide an information processing device, 
an information processing method and a program stor- 
age medium which enable detection and revocation of 
invalid devices by using a tree-structured hierarchical 
key distribution system without using the ID list of the 
invalid devices. 

[0016] An information processing device according to 
the present invention, associated with respective leaves 
of a hierarchical tree structure in which unique keys are 
associated with nodes and leaves, has a key set stored 
therein, the key set consisting of leaf key corresponding 
to each leaf of the hierarchical tree structure and node 
keys on paths to upper layers. The information process- 
ing d vice comprises a constitution for ex cuting verifi- 
cation processing as to whether an entity corresponding 
to a node or a leaf is a revocation entity, which is an 
entity to be revoked, by determining whether or not an 
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enabling key block (EKB) including encrypted key data 
resulting from encryption of a renewal node key of the 
hierarchical tree structure by a subordinate node key or 
a leaf key can be decrypted by a stored key set for an 
entity to be verified. The determination as to whether 
decryption is possible or not is xecuted by trace 
processing of a key location identification tag in the en- 
abling key block (EKB) based on an identifier of the en- 
tity to be verified. 

[0017] In the information processing device according 
to the present invention, the identifier of the entity to be 
verified includes position information of the correspond- 
ing node or leaf of the entity in the hierarchical tree struc- 
ture, and the key location identification tag in the ena- 
bling key block (EKB) is constituted as a tag for identi- 
fying the presence or absence of encrypted key data on 
a subordinate layer of each of the encrypted key data in 
the enabling key block (EKB). The trace processing is 
executed as the processing for tracing the tag on the 
basis of the position information of the entity in the hier- 
archical tree structure, included in the identifier of the 
entity to be verified. 

[0018] Moreover, in the information processing device 
according to the present invention, the identifier of th 
entity to be verified includes position information of the 
corresponding node or leaf of the entity in the hi rarchi- 
cal tree structure, and the key location identification tag 
in the enabling key block (EKB) is constituted as a tag 
for identifying the presence or absence of encrypted key 
data on a subordinate layer of each of the encrypted key 
data in the enabling key block (EKB). In this information 
processing device, determination as to whether th 
node position or leaf position corresponding to the ntity 
to be verified can be reached or not is executed by the 
trace processing of the tag based on the identifier of the 
entity to be verified, and in case the position cannot be 
reached, determination as to whether decryption is pos- 
sible or not is executed by determining whether it be- 
longs to a subordinate layer of a node key that is not 
renewed. 

[0019] Furthermore, in the information processing de- 
vice according to the present invention, the identifi rof 
the entity to be verified is an identifier stored in a public 
key certificate of the entity. In the information processing 
device, the identifier of the entity to be verified is ac- 
quired from the public key certificate of the entity. 
[0020] Moreover, in the information processing device 
according to the present invention, in decrypting an n- 
crypted content provided from an entity corresponding 
to a node or leaf constituting the hierarchical tre struc- 
ture, the identifier of the entity is acquired from a public 
key certificate of the entity and the trace processing of 
the tag of the enabling key block (EKB) based on the 
acquired identifier is executed, thus determining wheth- 
er the entity is a revocation entity or not and executing 
decryption processing of the encrypted content based 
on a content encryption key Kcon acquired from the n- 
abling key block (EKB). 



EP 1 235 381 A1 



15 



20 



25 



30 



35 



40 



45 



50 



3 



5 



EP 1 235 381 A1 



6 



[0021] According to the present invention, there is al- 
so provided an information processing method in an in- 
formation processing device, associated with respective 
leaves of a hierarchical tree structure in which unique 
keys are associated with nodes and leaves, having a 5 
key set stored therein, the key set consisting of leaf key 
corresponding to each leaf of the hierarchical tree struc- 
ture and node keys on paths to upper layers. The infor- 
mation processing method comprises a constitution for 
executing verification processing as to whether an entity 10 
corresponding to a node or a leaf is a revocation entity, 
which is an entity to be revoked , by determining whether 
or not an enabling key block (EKB) including encrypted 
key data resulting from encryption of a renewal node key 
of the hierarchical tree structure by a subordinate node 15 
key or a leaf key can be decrypted by a stored key set 
for an entity to be verified. The determination as to 
whether decryption is possible or not is executed by 
trace processing of a key location identification tag in 
the enabling key block (EKB) based on an identifier of 20 
the entity to be verified. 

[0022] Moreover, in the information processing meth- 
od according to the present invention, the identifier of 
the entity to be verified includes position information of 
the corresponding node or leaf of the entity in the hier- 25 
archical tree structure, and the key location identification 
tag in the enabling key block (EKB) is constituted as a 
tag for identifying the presence or absence of encrypted 
key data on a subordinate layer of each of the encrypted 
key data in the enabling key block (EKB). The trace 30 
processing is executed as the processing for tracing the 
tag on the basis of the position information of the entity 
in the hierarchical tree structure, included in the identi- 
fier of the entity to be verified. 

[0023] In the information processing method accord- 35 
ing to the present invention, the identifier of the entity to 
be verified includes position information of the corre- 
sponding node or leaf of the entity in the hierarchical 
tree structure, and the key location identification tag in 
the enabling key block (EKB) is constituted as a tag for *o 
identifying the presence or absence of encrypted key 
data on a subordinate layer of each of the encrypted key 
data in the enabling key block (EKB). in this information 
processing method, determination as to whether the 
node position or leaf position corresponding to the entity 45 
to be verified can be reached or not is executed by the 
trace processing of the tag based on the identifier of the 
entity to be verified, and in case the position cannot be 
reached, determination as to whether decryption is pos- 
sible or not is executed by determining whether it be- 50 
longs to a subordinate layer of a node key that is not 
renewed. 

[0024] Furthermore, in the information processing 
method according to the present invention, the identifier 
of the ntity to be verified is an identifier stored in a pub- 55 
lie key certificate of the entity. In th information process- 
ing method, the identifier of the entity to be verified is 
acquired from the public key certificate of the ntity. 



[0025] Moreover, in the information processing meth- 
od according to the present invention, in decrypting an 
encrypted content provided from an entity correspond- 
ing to a node or leaf constituting the hierarchical tree 
structure, the identifier of the entity is acquired from a 
public key certificate of the entity and the trace process- 
ing of the tag of the enabling key block (EKB) based on 
the acquired identifier is executed, thus determining 
whether the entity is a revocation entity or not and exe- 
cuting decryption processing of the encrypted content 
based on a content encryption key Kcon acquired from 
the enabling key block (EKB). 

[0026] According to the present invention, there is al- 
so provided a program storage medium for providing a 
computer program which causes a computer system to 
execute information processing in an information 
processing device, associated with respective leaves of 
a hierarchical tree structure in which unique keys are 
associated with nodes and leaves, having a key set 
stored therein, the key set consisting of leaf key corre- 
sponding to each leaf of the hierarchical tree structure 
and node keys on paths to upper layers. The computer 
program stored in the storage medium comprises a ver- 
ification processing step as to whether an entity corr - 
sponding to a node or a leaf is a revocation entity as an 
entity to be revoked, the verification processing step in- 
cluding a step of execution by determining whether or 
not an enabling key block (EKB) including encrypted key 
data resulting from encryption of a renewal node key of 
the hierarchical tree structure by a subordinate node key 
or a leaf key can be decrypted by a stored key set for 
an entity to be verified. The step of determining whether 
decryption is possible or not includes a step of execution 
by trace processing of a key location identification tag 
in the enabling key block (EKB) based on an identifier 
of the entity to be verified. 

[0027] The program storage medium according to the 
present invention is a medium for providing the compu- 
ter program in a computer-readable format to, for exam- 
ple, a general-purpose computer system capable of ex- 
ecuting various program codes. 

[0028] Such a program storage medium defines a 
structurally and functionally cooperative relation be- 
tween a computer program and a storage medium in or- 
der to realize the function of a predetermined computer 
program on the computer system. That is, by installing 
the computer program into the computer system via the 
storage medium, cooperative actions are exerted on the 
computer system. 

[0029] The other objects, features and advantages of 
the present invention will be made clear from the follow- 
ing detailed description of embodiments of the present 
invention and the accompanying drawings. 
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Brief Description of the Drawings 
[0030] 

Fig.1 is a block diagram showing a content distribu- 
tion system to which an information processing de- 
vice according to the present invention is applied. 
Fig. 2 is a block diagram showing a recording/repro- 
ducing device to which the information processing 
device according to the present invention is applied. 
Fig. 3 is a tree-structure diagram for explaining en- 
cryption processing of various keys and data, exe- 
cuted in the information processing device accord- 
ing to the present invention. 

Figs.4A and 4B show examples of an enabling key 
block (EKB) used for distribution of various keys 
and data to the information processing device ac- 
cording to the present invention. 
Fig. 5 shows an example of distribution of the ena- 
bling key block (EKB) of a content key to the infor- 
mation processing device according to the present 
invention and an example of decryption processing 
thereof. 

Fig. 6 shows an exemplary format of the enabling 
key block (EKB) in the information processing de- 
vice according to the present invention. 
Figs.7A, 7B and 7C illustrate the structure of a tag 
of the enabling key block (EKB). . 
Figs.8A and 8B show an exemplary data structure 
of the enabling key block (EKB) distributed together 
with the content key and content. 
Fig. 9 shows an example of processing in a device 
in the case the enabling key block (EKB) is distrib- 
uted together with the content key and content. 
Fig. 10 illustrate the processing in response to the 
case the enabling key block (EKB) and the content 
are stored in a recording medium. 
Fig. 11 shows a revocation entity verification se- 
quence involved in authentication processing 
based on a public key encryption system. 
Fig. 1 2 shows an exemplary structure of a public key 
certificate. 

Figs.13A and 13B show steps of EKB trace 
processing for determination of a revocation entity. 
Figs.14A and 14B show steps of EKB trace 
processing for determination of a revocation entity. 
Fig. 15 shows steps of EKB trace processing for de- 
termination of a revocation entity. 
Fig. 16 illustrates content distribution processing us- 
ing the EKB and public key certificate. 
Fig. 17 illustrates an example of category classifica- 
tion of a hierarchical tree structure. 

Best Mode for Carrying Out the Invention 

[0031] A cont nt distribution system to which the 
processing in the information processing device accord- 
ing to the present invention is applicabl is constituted 



as shown in Fig. 1 . 

[0032] In the system shown in Fig. 1 . a content distri- 
bution side 10 encrypts a content or content key and 
transmits the encrypted content or content key to vari- 

5 ous equipments which are provided on a content receiv- 
ing side 20 and capable of reproducing the content. The 
equipments on the receiving side 20 decrypt the re- 
ceived encrypted content or encrypted content key to 
acquire the content or content key and carry out repro- 

10 duction of image data and audio data or execute various 
programs. The data exchange between the content dis- 
tribution side 1 0 and the content receiving side 20 is car- 
ried out via a network such as the Internet, or through a 
distributable storage medium such as DVD or CD. 

15 [0033] Data distribution means on the content distri- 
bution side 10 include the Internet 11, a broadcasting 
satellite 12, a telephone line 13 and a medium 14 such 
as DVD or CD. Devices on the content receiving side 
20 include a personal computer (PC) 21 , a portable d - 

20 vice (PD) 22, a portable equipment 23 such as a porta- 
ble telephone or PDA (personal digital assistant), a re- 
cording/reproducing unit 24 such as a DVD or CD play- 
er, and a reproduction-only unit 25 such as a game ter- 
minal. These devices on the content receiving side 20 

25 acquires the content provided from the content distribu- 
tion side 10 through communication means such as a 
network or through a medium 30. 
[0034] As an example of the information processing 
devices on the content receiving side 20 shown in Fig. 

30 1 , a block diagram of the structure of a recording/repro- 
ducing device 100 is shown in Fig.2. The recording/re- 
producing device 100 has an input/output l/F (interface) 
120, an MPEG (Moving Picture Experts Group) codec 
130, an input/output l/F (interface) 140 having an A/D 

35 and D/A converter 141, encryption processing means 
150, a ROM (read-only memory) 160, a CPU (central 
processing unit) 170, a memory 180, and a drive 190 for 
a recording medium 195. These units are interconnect- 
ed by a bus 110. 

40 [0035] The input/output l/F 120 receives digital sig- 
nals constituting various contents such as images, 
sounds and programs supplied from outside and out- 
puts these digital signals onto the bus 110. The input/ 
output l/F 120 also receives digital signals on the bus 

45 110 and outputs these digital signals to outside. Th 
MPEG codec 130 performs MPEG decoding of MPEG- 
coded data supplied via the bus 110 and outputs the 
MPEG-decoded data to the input/output l/F 140. The 
MPEG codec 1 30 also performs MPEG coding of digital 

50 signals supplied from the input/output l/F 140 and out- 
puts the MPEG-coded digital signals onto the bus 110. 
The input/output l/F 140 has the A/D and D/A converter 
141 provided therein. The input/output l/F 140 rec ives 
an analog signals as contents supplied from outside and 

55 performs A/D (analog-to-digital) conv rsion of the ana- 
log signals by the A/D and D/A convert r 141, thus out- 
putting digital signals to the MPEG codec 130. The in- 
put/output l/F 140 also performs D/A (digital-to-analog) 
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conversion of the digital signals from the MPEG codec 
130 by the A/D and D/A converter 141 , thus outputting 
analog signals to outside. 

[0036] The encryption processing means 150 is con- 
stituted by, for example, one-chip LSI (large-scale inte- 
grated circuit) and is adapted for executing encryption 
and decryption processing or authentication processing 
of digital signals as contents supplied via the bus 110 
and outputting the encrypted data, decrypted data and 
the like to the bus 110. The encryption processing 
means 150 can be realized not only by the one-chip LSI 
but also by a combination of various software or hard- 
ware. The processing means constituted by the soft- 
ware will be described later. 

[0037] The ROM 160 stores program data processed 
by the recording/reproducing device. The CPU 170 ex- 
ecutes the programs stored on the ROM 160 and mem- 
ory 180, thus controlling the MPEG codec 130, the en- 
cryption processing means 150 and the like. The mem- 
ory 180 is, for example, a non-volatile memory, which 
stores the programs executed by the CPU 170, data 
necessary for the operation of the CPU 170, and a key 
set used for encryption processing executed by the de- 
vice. The key set will be described later. The drive 190 
drives the recording medium 195 on which digital data 
can be recorded and reproduced, thus reading out (re- 
producing) digital data from the recording medium 195 
and outputting the read digital data onto the bus 110. 
The drive 1 90 also supplies digital data supplied via the 
bus 110, to the recording medium 195 and causes the 
digital data to be recorded on the recording medium 195. 
[0038] The recording medium 195 is a medium on 
which digital data can be stored, for example, an optical 
disc such as DVD or CD, a magneto-optical disc, a mag- 
netic tape, or a semiconductor memory such as RAM. 
In this embodiment, the recording medium 195 can be 
mounted on/removed from the drive 190. The recording 
medium 195 may also be provided within the recording/ 
reproducing device 100. 

[0039] The encryption processing means 150 shown 
in Fig. 2 may be constituted as a one-chip LSI or may be 
realized as a combination of software and hardware. 
[0040] A mechanism for holding an encryption 
processing key and a data distribution structure in each 
device in the case where encrypted data is distributed 
from the content distribution side 10 to each device on 
the content receiving side 20 shown in Fig.1 will now be 
described with reference to Fig. 3. 
[0041] Numbers 0 to 15 shown on the bottom of Fig. 
3 represent the individual devices on the content receiv- 
ing side 20. That is, leaves of a hierarchical tree struc- 
ture of Fig.3 correspond to the respective devices. 
[0042] At the time of manufacture or shipment, or after 
that, ach of the devices 0 to 1 5 stores into the memory 
a key set consisting of node keys allocat d to nodes to 
reach the root from each device's own leaf and a leaf 
key of the device's own leaf in the hi rarchical tree struc- 
tur shown in Fig.3. Keys K0000 to K1111 shown on the 
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bottom of Fig.3 are leaf keys allocated to the devices 0 
to 15, respectively. A key KR (root key) on the top to 
keys described at the second nodes from the bottom, 
that is, keys KR to K111, are node keys. 

5 [0043] In the tree structure shown in Fig.3, for exam- 
ple, the device 0 holds a leaf key KO0O0 and node keys 
K000, K00, K0 and KR. The device 5 holds keys K01 01 , 
K01 0, K01 , K0 and KR. The device 1 5 holds keys K1 1 1 1 . 
Kill, K11, K1 and KR. In the tree of Fig.3, only the 16 

to devices 0 to 15 are described and the tree structure is 
a horizontally symmetrical four-stage structure. Howev- 
er, more devices may be formed in the tree and different 
stages can be provided in the respective parts of the 
tree. 

15 [0044] The information processing devices contained 
in the tree structure of Fig.3 include various types of in- 
formation processing devices which use various record- 
ing media, for example, DVD, CD, MD and flash memory 
embedded in the devices or attachable to/removable 

20 from the devices. Moreover, various application servic- 
es can coexist. The hierarchical tree structure as a con- 
tent or key distribution structure shown in Fig.3 is ap- 
plied to such a configuration in which different devices 
and different applications coexist. 

25 [0045] In the system where these various information 
processing devices and applications coexist, for exam- 
ple, the devices 0,1.2 and 3 are set as one group which 
uses the same recording medium, as indicated by a part 
surrounded by a dotted line in Fig.3. For example, to the 

30 devices included in the group surrounded by the dotted 
line, processing is executed for collectively encrypting 
a common content and sending it from a provider, or 
sending a content key commonly used by the devices, 
or encrypting content fee payment data and outputting 

35 the encrypted content fee payment data from each de- 
vice to the provider or a settlement institution. Th insti- 
tution such as the content provider or the settlement in- 
stitution, which transmits and receives data to and from 
each device, executes processing for sending data in a 

40 batched manner to the part surrounded by the dotted 
line in Fig.3, that is, the devices 0, 1, 2 and 3 as one 
group. Aplurality of such groups exist in the tree of Fig. 
3. The institution such as the content provide or the set- 
tlement institution, which transmits and receives data to 

45 and from each device, functions as message data dis- 
tribution means. 

[0046] The node keys and the leaf keys may be col- 
lectively controlled by a single key control center. Alter- 
natively, each group of the node keys and the leaf keys 

so may be controlled by the message data distribution 
means such as the provider or the settlement institution, 
which transmits and receives various data to and from 
each group. These node keys and leaf keys are re- 
newed, for example, in the case of key leak or the like. 

55 The renewal processing is carried out by th key control 
center, the provider or the settlem nt institution. 
[0047] As is clearfrom Fig.3, in this tree structure, the 
thr e devices 0, 1, 2 and 3 included in the one group 
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hold common keys K00, KO and KR as node keys. By 
utilizing this node key-shared structure, for example, it 
is possible to a common content key only to the devices 
0, 1 , 2 and 3. For example , by setting the commonly held 
node key K00 itself as a content key, it is possible to set 
a content key that is common only to the devices 0, 1, 

2 and 3 without newly sending a key. Moreover, by dis- 
tributing a value Enc (K00, Kcon), obtained by encrypt- 
ing a new content key Kcon by the node key K00, to the 
devices 0, 1 , 2 and 3 via a network or a recording me- 
dium, it is possible that only the devices 0, 1, 2 and 3 
decrypt the value Enc (K00, Kcon) by using the common 
node key K00 held in the respective devices and thus 
acquire the content key Kcon. Enc (Ka, Kb) represents 
data obtained by encrypting Kb by Ka. 

[0048] If it is revealed at a certain time point t that the 
keys K0011 , K001 , K00, KO and KR held by the device 

3 were analyzed and exposed by a hacker, the device 
3 must be then disconnected from the system in order 
to protect data transmitted and received in the system 
(the group consisting of the devices 0, 1, 2 and 3). To 
this end, the node keys K001 , K00, KO and KR must be 
renewed to new keys K(t)001, K(t)00, K(t)0 and K(t)R, 
and the renewal keys must be transmitted to the devices 
0, 1 and 2. K(t)aaa represents a renewal key of a gen- 
eration t of a key Kaaa. 

[0049] The distribution processing of a renewal key 
will now be described. The renewal of a key is carried 
out by supplying a table constituted by block data called 
enabling key block (EKB) shown in Fig.4Ato the devices 
0,1 and 2, for example, via a network or a recording me- 
dium. The enabling key block (EKB) is constituted by an 
encryption key for distributing a renewed key to devices 
corresponding to respective leaves forming a tree struc- 
ture as shown in Fig.3. The enabling key block (EKB) 
may also be referred to as key renewal block (KRB). 
[0050] The enabling key block (EKB) shown in Fig.4A 
is constituted as block data having a data structure re- 
newable only by a device which requires renewal of a 
node key. The example shown in Fig.4A represents 
block data formed for the purpose of distributing a re- 
newal node key of a generation t to the devices 0, 1 and 
2 in the tree structure shown in Fig.3. As is clear from 
Fig.3, the device 0 and the device 1 need K(t)00, K(t)0 
and K(t)R as renewal node keys, and the device 2 needs 
K(t)001, K(t)00, K(t)0 and K(t)R as renewal node keys. 
[0051] As is shown in the EKB of Fig.4A, an EKB con- 
tains a plurality of encryption keys. An encryption key 
on the bottom is Enc(K0010, K(t)001). This is a renewal 
node key K(t)001 encrypted by the leaf key K001 0 held 
by the device 2. The device 2 can decrypt this encrypted 
key by using the leaf key held by the device 2 itself, thus 
acquiring K(t)001. Using K(t)001, which is acquired by 
the decryption, an encrypted key Enc(K(t)001, K(t)00) 
on the second stage from the bottom of Fig.4A can be 
decrypted and a renewal node key K(t)00 can be thus 
obtained. Similarly, an encrypted key Enc(K(t)00, K(t)0) 
on the second stage from the stop of Fig .4A is decrypted 



to generate a renewal node key K(t)0, and an encrypted 
key Enc(K(t)0, K(t)R) on the top of Fig.4A is decrypted 
to generate K(t)R. As for the devices 0 and 1, the node 
key K000 is not included as an object of renewal and K 

5 (t)00, K(t)0 and K(t)R are required as renewal node 
keys. The devices 0 and 1 decrypt an encrypted key Enc 
(K000, K(t)00) on the third stage from the top of Fig.4A, 
thus acquiring K(t)00. Then, the encrypted key Enc(K(t) 
00, K(t)0) on the second stage from the top of Fig.4A is 

10 decrypted to generate the renewal node key K(t)0, and 
the encrypted key Enc(K(t)0, K(t)R) on the top of Fig. 
4Ais decrypted to generate K(t)R. In this manner, the 
devices 0, 1 and 2 can acquire the renewed key K(t)R. 
The indexes in Fig.4A represent the absolute addresses 

is of the node keys and the leaf keys used as decryption 
keys. 

[0052] If renewal of the node keys K(t)0 and K(t)R on 
the upper level of the tree structure shown in Fig.3 is not 
necessary and only the node key K00 needs to be re- 
20 newed, the renewal node key K(t)00 can be distributed 
to the devices 0,1 and 2 by using an enabling key block 
(EKB) shown in Fig.4B. 

[0053] The EKB shown in Fig.4B is usable in the case 
of distributing, for example, a new content key shared 

25 in a specified group. As a specific example, it is as- 
sumed that the devices 0,1,2 and 3 in the group indi- 
cated by the dotted line in Fig.3 use a certain recording 
medium and that a new common content key K(t)con is 
required. In this case, data Enc(K(t), K(t)con) obtained 

30 by encrypting the new common content key K(t)con by 
using the common node key K00 of the devices 0,1,2 
and 3 is distributed together with the EKB shown in Fig. 
4B. This enables distribution of the data in such a man- 
ner that the data cannot be decrypted by any equipment 

35 jn the other groups, for example, the device 4. 

[0054] That is , by decrypting the encrypted text by us- 
ing K(t)00 resulting from the processing of the EKB, the 
devices 0, 1 and 2 can acquire the content key K(t)con 
at the time point t. 

40 [0055] Fig. 5 shows processing at the device 0 where 
the data Enc(K(t)00, K(t)con) resulting from the encryp- 
tion of the new common content key K(t)con using K(t) 
00 and the EKB shown in Fig.4B are received via a re- 
cording medium, as an example of processing for ac- 

45 quiring the content key K(t)con at the time point t. That 
is, in this example, the encrypted message data based 
on the EKB is the content key K(t)con. 
[0056] As shown in Fig. 5, the device 0 generates the 
node key K(t)00 by EKB processing similarto the above- 
so described processing, using the EKB of the generation 
stored in the recording medium, that is, the EKB at the 
time point t, and the node key K000 stored in the device 
0 in advance. Moreover, the device 0 decrypts the re- 
newal content key K(t)con by using th decrypted re- 

55 newal node key K(t)00, and th n encrypts and stores 
the renewal content key K(t)con by using the leaf key 
K0000 which only the device 0 holds, in ord r to use it 
later. 
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[0057] However, If the device 0 has means for safely 
storing the renewal content key K(t)con, the device 0 
need not encrypt the renewal content key K(t)con by the 
leaf key KO0O0. 

[0058] Fig. 6 shows an exemplary format of the ena- 5 
bling key block (EKB). Version 601 is an identifier indi- 
cating the version of the enabling key block (EKB). The 
version functions to identify the latest EKB and to rep- 
resent the correspondence with the content. Depth in- 
dicates the number of hierarchical levels of the hierar- 10 
chical tree with respect to the device at the destination 
of distribution of the enabling key block (EKB). A data 
pointer 603 is a pointer indicating the position of a data 
part in the enabling key block (EKB). A tag pointer 604 
is a pointer indicating the position of a tag part. A signa- is 
ture pointer 605 is a pointer indicating the position of a 
signature. 

[0059] A data part 606 stores, for example, data ob- 
tained by encrypting a node key to be renewed. For ex- 
ample, the data part 606 stores each encrypted key as- 20 
sociated with a renewal node key as shown in Fig. 5. 
[0060] A tag part 607 is a tag indicating the positional 
relation between the encrypted node key and leaf key 
stored in the data part. The provision rule for this tag will 
be described with reference to Fig. 7. Fig. 7 shows an ex- 25 
ample of sending, as data, the enabling key block (EKB) 
described above with reference to Fig.4A. The data in 
this case is constituted as shown in the table of Fig.7B. 
The address of a top node included in the encrypted 
keys of this case is assumed as a top node address. In 30 
this case, since a renewal key K(t)R of the root key is 
included, the top node address is KR. Data Enc(K(t)0, 
K(t)R) on the top is situated at a position in a hierarchical 
tree shown in Fig.7A. The next data is Enc(K(t)00, K(t) 
0), which is situated at a position that is on the lower left 35 
side of the previous data in the tree. A tag of 0 is set if 
there is data. A tag of 1 is set if there is no data. The 
tags are set in the form of {left (L) tag, right (R) tag}. As 
for the data Enc(K(t)0, K(t)R) on the top, since there is 
data on the left side and there is no data on the right 40 
side, L tag = 0 and R tag = 1 are set. Hereinafter, the 
tags are set for all the data, and a data string and a tag 
string are constituted as shown in Fig.7C. 
[0061] The tag is a key location identification tag set 
for indicating where data Enc(Kxxx, Kyyy) is situated in 45 
thetree structure. Since the key data Enc(Kxxx, Kyyy) ... 
stored in the data part are simply marshaling of encrypt- 
ed keys, the positions of the encrypted keys stored as 
data are made discriminable by the above-described 
tags. A data structure such as so 

0: Enc(K(t)0, K(t)root) 

00: Enc(K(t)00, K(t)0) 

000: Enc(K(t)000, K(t)00) ... 
is made possible by using node indexes associated with 
the encrypted data, as described with reference to Fig. 55 
4, without using the above-described tags. How ver, 
such a structure using the indexes causes data redun- 
dancy and increases the data volume. This is not pre- 
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ferred for the distribution via a network. On the other 
hand, by using the above-described tags as index data 
indicating the key positions, it is possible to discriminate 
the key positions with a small data volume. As a rule for 
prescribing the order of tags and nodes, for example, a 
"breadth first" technique can be used in which descrip- 
tion is made sequentially from the left end to the right 
end at the same depth and then shifts to the left end 
node on the stage immediately below. 
[0062] Referring again to Fig. 6, the EKB format will 
be described further. The signature is a digital signature 
to be executed by an EKB issuing bureau which issued 
the enabling key block (EKB), for example, the key con- 
trol center, the content provider, or the settlement insti- 
tution. The device which received the EKB confirms that 
it is the EKB issued by the valid enabling key block 
(EKB) issuer, by signature verification. 
[0063] In the above-described example, only the con- 
tent key is sent together with the EKB. A structure for 
sending a content encrypted by a content key, together 
with the content key encrypted by an encryption key 
such as a root key or a node key, and a cont nt key 
encryption key encrypted by an EKB, will now be de- 
scribed. 

[0064] Fig. 8 shows this data structure. In the structure 
shown in Fig.8A, Enc(Kcon, content) 801 is data ob- 
tained by encrypting a content (content) by a content 
key (Kcon). Enc(Kroot, Kcon) 802 is data obtained by 
encrypting the content key (Kcon) by a root key (Kroot). 
Enc(EKB, Kroot) 803 is data obtained by encrypting the 
root key (Kroot) by an enabling key block (EKB). 
[0065] The root key Kroot may also be a node key 
(K000, K00, ...) shown in Fig.3. 

[0066] Fig.8B shows an exemplary structure in the 
case where a plurality of contents are recorded in a me- 
dium and use the same Enc(EKB, Kroot) 805. In such 
a structure, data indicating the link destination to be 
linked to Enc(EKB, Kroot) is added to each data, instead 
of adding the same Enc(EKB, Kroot) to each data. 
[0067] Fig.9 shows an example of processing in the 
case where the content key Kcon is encrypted by using 
the renewal node key K(t)00 obtained by renewing the 
node key K00 shown in Fig.3. In this case, it is assumed 
that the device 3 in the group surrounded by the dotted 
line in Fig.3 has been revoked because of, for example, 
key leak, the enabling key block (EKB) shown in Fig.9, 
data obtained by encrypting the content key (Kcon) by 
the renewal node key K(t)00, and data obtained by en- 
crypting the content (content) by the content key (Kcon) 
are distributed to the other members of the group, that 
is, the devices 0, 1 and 2. Thus, the devices 0, 1 and 2 
can acquire the content. 

[0068] On the right side in Fig.9, the decryption pro- 
cedure in the device 0 is shown. First, the device 0 ac- 
quires K(t)00 from the received enabling key block by 
decryption processing using the device's own leaf key 
K000. Next, the device 0 acquires the content key Kcon 
by decryption using K(t)00 and then carries out decryp- 



8 



15 



EP 1 235 381 A1 



16 



tion of the content by using the content key Kcon. By 
such processing, the content is made usable to the de- 
vice 0. Similarly, the devices 1 and 2 can acquire the 
encryption key of the content key by processing the EKB 
in accordance with their respective processing proce- 
dures, and thus can use the content. 
[0069] The devices 4,5,6 ... of the other groups shown 
in Fig.3 cannot acquire K(t)00 by using their own leaf 
keys and node keys even when the same data (EKB) is 
received. Similarly, the revoked device 3 cannot acquire 
K(t)00 by using its own leaf key and node key. Therefore, 
only the device having the valid right can decrypt and 
use the content. 

[0070] By thus using the distribution of a content key 
using the EKB, it is possible to reduce the data volume 
and safely distribute an encrypted content that can be 
decrypted only by a valid user. 

[0071] While the enabling key block (EKB), content 
key and encrypted content can be safely distributed via 
a network, the enabling key block (EKB), content key 
and encrypted content can be stored on a recording me- 
dium such as DVD or CD and then provided to the user. 
In this case, for decrypting the encrypted content stored 
on the recording medium, the content key obtained only 
by decrypting the enabling key block (EKB) stored in the 
same recording medium is used. Thus, distribution of 
the encrypted content which can be used only by using 
the leaf key and node key held only a valid user, that is, 
distribution of the content limited to an available user 
device, can be realized with a simple structure. 
[0072] Fig. 10 shows an exemplary structure in which 
an enabling key block (EKB) is stored together with an 
encrypted content onto a recording medium. In the ex- 
ample shown in Fig. 10, contents C1 to C4 are stored 
onto a recording medium and data which associates 
corresponding enabling key blocks (EKB) with the re- 
spective stored contents is stored. Moreover, an ena- 
bling key block of version M (EKB_M) is stored. For ex- 
ample, EKB_1 is used for generating a content key 
Kcon 1 by encrypting the content C1 , and EKB_2 is used 
for generating a content key Kcon2 by encrypting the 
content C2. In this example, the enabling key block of 
version M (EKB_M) is stored on the recording medium 
and the contents C3 and C4 are associated with the en- 
abling key block (EKB_M). Therefore, content keys for 
the contents C3 and C4 can be acquired by decrypting 
the enabling key block (EKB_M). Since EKB_1 and 
EKB_2 are not stored on the disc, it is necessary to ac- 
quire EKB_1 and EKB_2 required for decrypting the re- 
spective content keys, by new provision means, for ex- 
ample, distribution via a network or distribution through 
a recording medium. 

[0073] The processing for detecting a revocation en- 
tity (e.g., invalid device) using an enabling key block 
(EKB) will now be described. First, a mutual authentica- 
tion method using a public key encryption system will 
be describ d with reference to Fig.11. In Fig. 11, A has 
its own private key [Apri-K y], public k y [Apub-K y], 



and public key certificate [Acert] on which a signature of 
a certificate authority is given. A also has a public key 
of the certificate authority, which is the signer of the pub- 
lic key certificate, and a public key of an EKB issuing 

5 bureau, which is the signer of the EKB. B has its own 
private key [Bpri-Key], public key [Bpub-Key], and public 
key certificate [Bcert] on which a signature of the certif- 
icate authority is given, and also has the public key of 
the certificate authority and the public key of the EKB 

10 issuing bureau. 

[0074] The structure of the public key certificate 
owned by each of A and B shown in Fig. 11 will be de- 
scribed with reference to Fig. 12. The public key certifi- 
cate is a certificate issued by the certificate authority 

15 (CA) (or issuer authority (IA) in the public key encryption 
system. This certificate is prepared as the user submits 
his/her ID, public key and the like to the certificate au- 
thority and the certificate authority appends information 
such as the certificate authority's ID, the expiration date 

20 and the like and also appends the certificate authority's 
signature. 

[0075] A public key certificate 51 shown in Fig. 12 con- 
tains a whole specification message 52 including the 
version number of the certificate, the serial number of 

25 the certificate which is allocated to the certificate user 
by the certificate authority, the algorithm and parameter 
used for the digital signature, the name of the certificate 
authority, the expiration date of the certificate, the cer- 
tificate user ID and the public key of the certificate user, 

30 and a digital signature 53 of the certificate authority. 
[0076] The digital signature 53 is data generat d by 
applying a hash function to the whole message including 
the version number of the certificate, the serial number 
of the certificate which is allocated to the certificate user 

35 by the certificate authority, the algorithm and parameter 
used for the digital signature, the name of the certificat 
authority, the expiration date of the certificate, the cer- 
tificate user ID and the public key of the certificate user, 
to generate a hash value, and then applying the private 

40 key of the certificate authority to the hash value. 

[0077] The certificate user ID of the public key certif- 
icate contains leaf ID as an identification value indicating 
the node and leaf positions in the above-described key 
distribution tree structure. In the case of the tree struc- 

45 ture of Fig.3, the device 0 has [ID = 0000], the d vice 1 
has [ID = 0001], and the device 15 has [ID = 1111]. On 
the basis of such IDs, it is possible to identify the posi- 
tions (leaf or node) in the tree structure where entities 
such as the devices are situated. 

50 [0078] The mutual authentication processing of Fig. 
11 is carried out by using the above-described public 
key certificate. First, B generates a random number Rb 
and sends B's public key certificate Bcert and the ran- 
dom number Rb to A. Having r ceived these, A verifies 

55 B's public key c rtificate (B.Cert) by using the public key 
of the certificate authority. If the verification is NG, it is 
determined that the public key certificate is invalid. 
Therefore, the authentication processing is stopped at 
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this point and the authentication is not achieved. If the 
verification of B's public key certificate (B.Cert) is OK, 
the E ; 3 held by A's device is traced on the basis of B's 
leaf ID in B's public key certificate (B.Cert). 
[0079] As is understood from the foregoing descrip- 5 
tion with reference to Fig. 7, the tags stored in the EKB 
indicate the presence/absence of data at the left and 
right nodes of the device's own node, in the form of 0, 
1 . That is. 0 is set when there is data while 1 is set when 
there is no data. The EKB tracing processing based on 10 
the leaf ID is carried out by using the tags based on such 
condition setting. 

[0080] The tracing of the EKB based on the leaf ID will 
be described with reference to Fig. 13. As shown in Fig. 
13A, a device having a leaf key K1001 is assumed as a 15 
revoked device [1001]. In this case, the EKB has en- 
crypted keys and tags as shown in Fig.13B. The EKB 
shown in Fig.13B has KR, K1, K10 and K100 renewed 
in order to revoke the one device [1001] shown in Fig. 
13A. 20 
[0081] By processing this EKB, a root key K(t)R which 
has all the leaves renewed except for the revoked de- 
vice [1001] can be acquired. Specifically, as for the 
leaves on the levels below the node key K0, the node 
key K0 which is not renewed is held in the devices. 25 
Therefore, the renewed root key K(t)R can be acquired 
by decrypting Enc(K0, K(t)R) using K0. As for the leaves 
below K11 , a renewal node key K(t)1 is acquired by de- 
crypting Enc(K11, K(t)1) using K11 which is not re- 
newed, and the renewed root key can be acquired by 30 
further decrypting Enc(K(t)1, K(t)R) using K(t)1. As for 
the leaves blow K101 , too, the renewed root key can be 
similarly acquired except for the increase of the decryp- 
tion step by one. 

[0082] A device [1 000] having a leaf key K1000 which 35 
is not revoked can decrypt Enc(K1000, K(t)100) using 
its own leaf key to acquire K(t)1 00 and then sequentially 
decrypt the node keys on the upper levels, thus acquir- 
ing the renewed root key. 

[0083] Only the revoked device [1 001] cannot acquire <o 
a renewal node key K(t)100 on the level immediately 
above its own leaf by the EKB processing and therefore 
cannot acquire the renewed root key K(t)R. 
[0084] To the valid device which is not revoked, the 
EKB having the data part and tag shown in Fig.13B is 45 
distributed from the EKB issuing bureau and the EKB is 
stored in the device. 

[0085] In the mutual authentication, if the revoked de- 
vice [ID = 1001] shown in Fig.13Aand a certain content 
provider are carrying out mutual authentication based 50 
on the public key system shown in Fig.11, the content 
provider receives a public key certificate from the re- 
voked device [ID = 1001] of Fig.13A, verifies the public 
key certificate, and then acquires ID from the public key 
certificate. This ID is [1 001 ], which indicat s the leaf po- 55 
sition in the EKB distribution tree structure. 
[0086] Having received the ID [1001], the content pro- 
vid r verifies whether or not the device corresponding 
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to the leaf with ID = 1 001 is set as a valid leaf device in 
the EKB. This verification is executed as the processing 
for determining whether the leaf [1001] can acquire the 
renewed root key K(t)R or not. 

[0087] For example, it is evident that a leaf belonging 
to a level below an unrenewed node key (K0, K11 or the 
like in Fig.13A) is revoked, and the corresponding de- 
vice can be determined as a valid device. As for a leaf 
belonging to a level below a renewal node key, it is pos- 
sible determine whether the entity is revoked or not, de- 
pending on whether encryption data which enables ac- 
quisition of the renewal node key is stored in the EKB 
or not. 

[0088] An example of carrying out the EKB tracing 
processing based on the tag stored in the EKB as an 
example of the determination processing will now be de- 
scribed. The EKB tracing processing is processing for 
determining whether the key distribution tree can be 
traced from the upper root key or not. For example, 
[1001], which is the ID of the leaf [1001] in Fig.13A, is 
divided into four bits [1], [0], [0] and [1], and the tree is 
traced sequentially from the most significant bit to the 
lower bits. If the bit is 1 , the tracing goes to the right. If 
the bit is 0, the tracing goes to the left. 
[0089] From the root shown in Fig.1 3A, since the most 
significant bit of ID[1001] is 1, the tracing goes to the 
right. The first tag in the EKB is 0:{0, 0} and it is deter- 
mined that there is data on both sides. The tracing goes 
to the right to reach K1 . Next, the tracing goes to a node 
below K1 . The second bit of ID[1 001 ] is 0 and the tracing 
goes to the left. The tag indicating the presence/ab- 
sence of data on the level below K1 is 2:{0, 0} shown in 
Figs.13Aand 13B and it is determined that there is data 
on both sides. The tracing goes to the left to reach K10. 
Moreover, the third bit of ID[1001] is 0 and the tracing 
goes to the left. The tag indicating the presence/ab- 
sence of data on the level below K10 is 3:{0, 0} shown 
in Figs.13A and 13B and it is determined that there is 
data on both sides. The tracing goes to the left to reach 
K100. Furthermore, the least significant bit of ID[1001] 
is 1 and the tracing goes to the right. The tag indicating 
the presence/absence of data on the level below K100 
is 5:{0, 1} shown in Figs.13A and 13B and there is no 
data on the right side. Therefore, it is determined that 
the node [1001] cannot be reached and that the device 
of ID[1001] is a device which cannot acquire th re- 
newed root key based on the EKB, that is, a revoked 
device. 

[0090] The device ID having the leaf key K 1000 of Fig. 
13A is [1000] and the node [1000] can be reached by 
executing the EKB tracing processing based on the tag 
within the EKB as described above, that is, the process- 
ing for tracing the tree. Therefore, it is determined that 
the device is a valid device which is not revoked and can 
acquire the renewed root key based on the EKB. 
[0091] A leaf on a level below an unrenewed node key 
such as K0 or K11 cannot be reached. In this case, how- 
ever, an unrenewed terminal node can be reached. With 
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respect to the leaf on the level below the unrenewed 
node, the EKB processing can be carried out by using 
the unrenewed node key and the renewed root key can 
be acquired. Therefore, the device corresponding this 
leaf is a valid device. Whether the node key is a renewed 
one or not can be determined in accordance with the tag 
corresponding to that node. The tags corresponding to 
the unrenewed node keys K0, K11 andK101 are 1:{1,1}, 
4:{1 ,1 } and 6:{1 ,1}, which indicate that lower nodes and 
leaves exist but encryption key data is not held in the 
EKB. Therefore, it is determined that the devices corre- 
sponding to these lower leaves are valid device which 
are not revoked. 

[0092] While the example shown in Fig. 13 is arevo- 
cation mode for only one device, it is possible to collec- 
tively revoke all the leaf devices below a certain node, 
as shown in Fig. 14. In this case, data (encrypted key) 
and tag in the EKB are constituted as shown in Fig.14B. 
[0093] For example, if the content provider received 
a public key certificate from a revoked leaf device cor- 
responding to K1000 and thus acquired ID[1000], the 
processing for tracing the tree based on the tag of the 
EKB is carried out on the basis of this ID[1000]. 
[0094] From the root of Fig.14A, the most significant 
bit of ID[1000] is 1 and the tracing goes to the right. The 
first tag within the EKB is 0:{0, 0} and it is determined 
that there is data on both sides. The tracing goes to the 
right to reach K1 . Next, the tracing goes to a node on a 
level below K1 . The second bit of ID[1000] is 0 and the 
tracing goes to the left. The tag indicating the presence/ 
absence of data on the level below K1 is 2:{1 , 0} shown 
in Figs. 13A and 13B and there is no data on the leftside. 
Therefore, the node [1000] cannot be reached. The tag 
corresponding to the terminal node K1 in this case is {1 , 
0}, not {1 , 1} which indicates the absence of data on the 
lower level. 

[0095] The tag {1 , 0} indicates that encryption key da- 
ta for acquiring renewed K1(t) which can be decrypted 
only at a lower node or leaf on the right side of K1 is 
stored in the EKB. 

[0096] In this manner, if the final point to be reached 
on the basis of the leaf ID is a node and the tag corre- 
sponding to the final node has a value other than {1,1}, 
it means that encryption key data on the lower level is 
held in the EKB. In this case, since the leaf device having 
that ID cannot acquire the renewed root key by process- 
ing the EKB, the device is determined as a revoked de- 
vice. 

[0097] it is thus possible to determine whether the 
communicating party is revoked or not, on the basis of 
the leaf ID stored on the public key certificate acquired 
from the communicating party in the authentication 
processing. 

[0098] Referring again to Fig. 11 , the d scription of the 
authentication processing sequence will be continued. 
A executes th processing for tracing the tree bas d on 
the tag in the EKB as described above on the basis of 
B's leaf ID tak n out from the public key certificate re- 



ceived from B and then determines whether or not the 
leaf position indicated by the ID is a position where a 
renewed root key can be acquired by the EKB process- 
ing. If the leaf position is a position where the EKB 

5 processing is possible, the device is determined as a 
valid device which is not revoked. If the leaf position is 
a position where the EKB processing not possible, the 
device is determined as a revoked invalid device and 
the processing is stopped, assuming that the authenti- 

10 cation is not achieved. 

[0099] if it is determined that the leaf device is a de- 
vice which can carry out the EKB processing based on 
the ID, a signature is given with A's private key to the 
random number Rb received from B, thus generating 

15 Sig_A(Rb), and a random number Ra is generated. A 
sends these Sig_A(Rb) and Ra together with the EKB 
and the public key certificate A. Cert housed in A's own 
device to B. 

[0100] B verifies A's public key certificate (A. Cert) by 

20 using the public key of the certificate authority. If the ver- 
ification is OK. the received EKB is verified by using the 
public key of the EKB distributor. The EKB is signed with 
the private key of the EKB distributor in order to prevent 
falsification. B carries out the verification processing by 

25 using the EKB public key. If the verification is OK, B ac- 
quires A's leaf ID in A's public key certificate (A. Cert) 
and traces the EKB on the basis of the leaf ID similarly 
to the above-described case referring to Figs. 1 3 and 14. 
[0101] If the EKB cannot be traced, A is determined 

30 as a revoked device and the subsequent processing is 
stopped, assuming that the authentication is not 
achieved A is not necessarily a device and may be a 
content provide or a service provider, or may be a nod 
having a key c an intermediate node which is not a leaf 

35 on the bottom c* me tree structure shown in Figs.1 3 and 
14. For exa— .: > :f A is a node corresponding to the 
node key r • * ' ' * K10 shown in Figs. 13 and 14. ID 
of the co-*« * : • . j~' or service provider is [10] and 
the proce*- • : • i -»ng the EKB using the tag of the 

40 EKB is e»~ •• ■ - - -t*asis of ID[10], thus determining 
whethe' * r • . '-voked or not. 
[0102] jid be traced by the tracing 

process-: - ; A(Rb) received from A is ver- 

ified by ^ ■ *~y A. pub-Key in A's public key 

45 certifier- •'- ■ ■ verification is OK, Ra is signed 

with Br-*-. . Key), thus generating Sig_B 

(Ra) Tr- :■ • : b Ra) is sent to A. 

[0103] . : ^>g_B(Ra), A verifies Sig_B 

(Ra) b\ - *~y acquired from B's public 

50 key cerv * verification is OK, it is de- 

termines ?*■ * - * . • • :ation is achieved. 
[0104] £ *wchart for the processing for 

determinm-. , •. . ■ j-vice by using the EKB. Each 
step of the f • t>e described. At step S101, ID 

55 is acquired fr .~ r i.c key certificate of th commu- 
nicating party t cation party). At step S1 02, using 
the acquired ID tn~ tracing processing targeted to a leaf 
or node indicated Dy the ID on the basis of the tag of the 
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EKB. 

[0105] The tracing processing is executed in accord- 
ance with the procedure described above with reference 
to Figs. 13 and 14. Wether or not the leaf or node indi- 
cated by the ID could be reached as a result of the trac- 5 
ing processing is determined, and even if the leaf or 
node cannot be reached, whether or not the EKB 
processing is possible at the leaf or node indicated by 
the ID, that is, whether or not the acquisition of a re- 
newed root key is possible, is determined (S103). 10 
[0106] If it is determined that the ID is at a position 
where the EKB processing is possible, the processing 
goes to step S104 and it is determined that the device 
corresponding to the ID is a valid device which is not 
revoked. On the other hand, if it is determined that the 15 
ID is at a position where the EKB processing is not pos- 
sible, the processing goes to step S105 and it is deter- 
mined that the device corresponding to the ID is a re- 
voked invalid device. 

[0107] An example of the content use processing in- 20 
volvingthe revoked device (invalid device) determina- 
tion processing using the enabling key block (EKB) will 
now be described. In an example shown in Fig. 16, a pro- 
vider A encrypts a content and distributes the encrypted 
content to a device (ID = OOxx). 25 
[0108] The content provider A sends A's public key 
certificate [A. Cert], data generated by signing a content 
key with A's own private key [Sig_A(Kcon)], the enabling 
key block [EKB], data generated by encrypting the con- 
tent key with a renewed root key [Enc(K(t)root, Kcon)], 30 
and data generated by encrypting the content with the 
content key [Enc(Kcon, Content)], to the device [OOxx]. 
[0109] Having received these data, the device [OOxx] 
first verifies the received A's public key certificate [A. 
Cert] by using the public key of the certificate authority. 35 
If the verification is OK, the device [OOxx] acquires A's 
public key and A's ID from A's public key certificate. 
[0110] Next, the device [OOxx] verifies the data gen- 
erated by signing the content key with A'sprivate key 
[Sig_A(Kcon)], by using A's public key taken out from *o 
A's public key certificate [A.Cert]. If the verification is 
OK, the device [OOxx] then executes the above-de- 
scribed EKB tracing processing on the basis of A's ID 
taken out from the public key certificate [A.Cert] and de- 
termines whether or not the EKB processing is possible 45 
at a leaf or node position indicated by A's ID. 
[0111] If it is determined that A does not correspond 
to a revoked leaf or node as a result of the EKB tracing 
processing, the device [OOxx] acquires the renewed root 
key K(t)root from the received enabling key block by the 50 
decryption processing using its own leaf key and node 
key. Next, the device [OOxx] acquires the content key 
Kcon by decrypting the renewed root key K(t)root. More- 
over, the device [OOxx] decrypts the content by using the 
acquired content key Kcon. By such proc ssing, the 55 
content is made usable to the d vice [OOxx]. 
[0112] In the above-described processing, after the 
public key certificate of the content distributor is ac- 



quired, the verification of the public key certificate is car- 
ried out, and after the public key and ID of the content 
distributor are acquired, the EKB processing and the de- 
cryption of the content are carried out. Therefore, the 
content distributor can be specified on the basis of the 
ID and distribution of a content from an unknown distrib- 
utor can be prevented. 

[0113] In the example shown in Fig. 16, the provider 
A encrypts the content and distributes the encrypted 
content to the device (ID = OOxx), and the signature to 
the content key is given by the provider A and is verified 
by the device using the public key of the provider A. 
However, the content key may be signed with the de- 
vice's own private key and thus may be recorded onto 
the recording medium of the device, for example, when 
recording a content generated or acquired by the user 
to the recording medium of the device, not at the time 
of the recording/reproduction processing at the device 
of the content distributed from another provider. By thus 
signing the content key as a encryption key for the con- 
tent stored in the recording medium, it is essential to 
execute the verification of the signature of the content 
key by using the public key of the device when repro- 
ducing the content, and it is possible to eliminate stor- 
age/reproduction of invalid contents. 
[0114] In the above-described structure, encryption 
keys are constituted as the root key, the node keys and 
the leaf keys in the hierarchical tree structure of Fig. 3, 
and the content key and the like are encrypted and dis- 
tributed together with the enabling key block (EKB). 
Hereinafter, a structure in which a hierarchical tr e 
structure defining node keys and the like is classified by 
category of each device so as to execute efficient key 
renewal processing will be described. 
[0115] Fig. 17 shows an example of category classifi- 
cation of a hierarchical tree structure. In Fig. 17, a root 
key Kroot 2301 is set on the top of the hierarchical tree 
structure. A node key 2302 is set on the subsequent 
middle stage and a leaf key 2303 is set on the bottom. 
Each device holds its own leaf key, a series of node keys 
to reach the root key from the leaf key, and the root key. 
[0116] For example, a node on the Mth stage from the 
top is set as a category node 2304. That is, each of the 
nodes on the Mth stage is caused to be a device setting 
node of a specific category. With one node on the Mth 
stage assumed as an apex, nodes and leaves on the 
(M+1 )th and subsequent stages are caused to be nodes 
and leaves related to devices included in that category. 
[01 17] For example, a category [memory stick (trade- 
mark)] is set for one node 2305 on the Mth stage of Fig. 
17, and nodes and leaves subsequent to this node are 
set as nodes and leaves dedicated to the category which 
includes various devices using a memory stick. That is, 
the node 2305 and the subsequent nodes and leaves 
are defined as a set of related nodes and I aves of the 
devices included in the category of memory stick. 
[0118] Moreover, a node which is some stages below 
the Mth stage can be set as a subcategory node 2306. 
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For example, a node which is two stages below the node 
2305 of the category [memory stick] is set as a node of 
a subcategory [reproduction-only unit] included in the 
category of device using a memory stick, as shown in 
Fig. 17. Furthermore, below the reproduction-only unit 5 
node 2306 as a subcategory node, a node of a tele- 
phone with a music reproduction function 2307 included 
in the category of reproduction-only unit is set, and a 
[PHS] node 2308 and a [portable telephone] node 2309 
included in the category of telephone with a music re- 10 
production function can be set below the node 2307. 
[0119] The category and subcategory can be set not 
only by type of device but also by arbitrary unit such as 
a node independently managed by a certain manufac- 
turer, content provider or settlement institution, that is, 15 
processing unit, control unit or provided service unit 
(generally referred to as entity). For example, by setting 
one category node as an apex node dedicated to a 
game machine XYZ sold by a game machine manufac- 
turer, it is possible to sell the game machine by the man- 20 
ufacturer in which node keys and leaf keys of the stages 
below the apex node are stored. After that, an enabling 
key block (EKB) constituted by the apex key and the 
subsequent node keys and leaf keys is generated and 
then distribution of an encrypted content or distribution 25 
and renewal of various keys is carried out. Thus, it is 
possible to distribute data which is usable only to the 
devices corresponding to the apex node and the subse- 
quent nodes and leaves. 

[0120] By thus setting one node as an apex and set- 30 
ting subsequent nodes as related nodes of categories 
or subcategories defined by the apex node, it is possible 
that a manufacturer, a content provider or the like which 
controls one apex node on a category stage or a sub- 
category stage independently generates an enabling 35 
key block (EKB) based on that node as an apex and 
distributes the EKB to devices belonging to the apex 
node and the subsequent nodes. Key renewal can be 
carried out without affecting devices belongingto nodes 
of the other categories, not belonging to the apex node. 40 
[0121] In addition to the key renewal using the EKB 
by category, batched revocation by category or by spe- 
cific group is possible. If many revoked nodes or re- 
voked leaves are included, revocation determination 
based on the above-described EKB tracing processing 45 
is effective. This is because if a list having the IDs of all 
the revoked device recorded therein is distributed to 
each device, the problem of the storage use area of the 
list arises and the burden of ID collation processing is 
increased. The above-described EKB tracing process- 50 
ing based on ID is the tracing processing based on the 
tag within the EKB, in which the processing burden is 
extremely light and it is possible immediately determine 
whether revocation is mad or not. 

[0122] As described above, since the EKB is signed 55 
by the EKB issuer so that falsification can b checked, 
the validity of the EKB can be verifi d by the signature 
verification and secure revocation determination is real- 



24 
ized. 

[0123] While the present invention is described above 
with reference to some embodiments, it is obvious that 
modification and changes of the above-described em- 
bodiments may be made by those skilled in the art with- 
out departing from the scope of the present invention. 
That is, the above-described embodiments disclose the 
present invention in the form of examples and should 
not be interpreted as limitations. To determine the scope 
of the present invention, the description of claims should 
be referred to. 

Industrial Applicability 

[0124] The information processing device and meth- 
od according to the present invention makes it possible 
to determine a device or a service provider as a revoked 
entity on the basis of an enabling key block (EKB) using 
a hierarchical key distribution tree employed in distribu- 
tion of a content key and the like. Therefore, a revocation 
list having IDs of revoked entities stored therein need 
not be distributed to devices and each device no longer 
needs to store the list. 

[01 25] Moreover, in the information processing device 
and method according to the present invention, ID which 
enables position identification in the hierarchical key dis- 
tribution tree is stored in a public key certificate and trac- 
ing processing using a tag of the enabling key block 
(EKB) is executed on the basis of the ID acquired from 
the public key certificate. Therefore, the reliability of the 
ID is guaranteed by the public key certificate and secure 
determination of a revoked entity is made possible. 



Claims 

1. An information processing device, associated with 
respective leaves of a hierarchical tree structur in 
which unique keys are associated with nodes and 
leaves, having a key set stored therein, the key set 
consisting of leaf key corresponding to each leaf of 
the hierarchical tree structure and node keys on 
paths to upper layers, 

wherein the information processing device 
comprising a constitution for executing verification 
processing as to whether an entity corresponding 
to a node or a leaf is a revocation entity, which is an 
entity to be revoked, by determining whether or not 
an enabling key block (EKB) including encrypted 
key data resulting from encryption of a renewal 
node key of the hierarchical tree structure by a sub- 
ordinate node key or a leaf key can be decrypted 
by a stored key set for an entity to be verified, the 
det rmination as to wheth r decryption is possibl 
or not being executed by trace processing of a key 
location identification tag in the enabling k y block 
(EKB) based on an identifier of the ntity to b ver- 
ified. 
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2. The information processing device as claimed in 
claim 1 , wherein the identifier of the entity to be ver- 
ified includes position information of the corre- 
sponding node or leaf of the entity in the hierarchical 
tree structure, and 5 

the key location identification tag in the ena- 
bling key block (EKB) is constituted as a tag for 
identifying the presence or absence of encrypted 
key data on a subordinate layer of each of the en- 
crypted key data in the enabling key block (EKB), 10 

the trace processing being executed as the 
processing for tracing the tag on the basis of the 
position information of the entity in the hierarchical 
tree structure, included in the identifier of the entity 
to be verified. 15 

3. The information processing device as claimed in 
claim 1 , wherein the identifier of the entity to be ver- 
ified includes position information of the corre- 
sponding node or leaf of the entity in the hierarchical 20 
tree structure, and 

the key location identification tag in the ena- 
bling key block (EKB) is constituted as a tag for 
identifying the presence or absence of encrypted 
key data on a subordinate layer of each of the en- 25 
crypted key data in the enabling key block (EKB), 

the information processing device having a 
constitution such that determination as to whether 
the node position or leaf position corresponding to 
the entity to be verified can be reached or not is ex- 30 
ecuted by the trace processing of the tag based on 
the identifier of the entity to be verified, and in case 
the position cannot be reached, determination as to 
whether decryption is possible or not is executed by 
determining whether it belongs to a subordinate lay- 35 
er of a node key that is not renewed. 

4. The information processing device as claimed in 
claim 1 , wherein the identifier of the entity to be ver- 
ified is an identifier stored in a public key certificate *o 
of the entity, 

the information processing device having a 
constitution such that the identifier of the entity to 
be verified is acquired from the public key certificate 
of the entity. 45 

5. The information processing device as claimed in 
claim 1 , wherein in decrypting an encrypted content 
provided from an entity corresponding to a node or 
leaf constituting the hierarchical tree structure, so 

the identifier of the entity is acquired from a 
public key certificate of the entity and the trace 
processing of the tag of the enabling key block 
(EKB) based on the acquir d identifier is executed, 
thus determining whether the entity is a r vocation 55 
entity or not and executing decryption processing 
of the encrypted content based on a content encryp- 
tion key Kcon acquired from the enabling key block 



(EKB). 

An information processing method in an information 
processing device, associated with respective 
leaves of a hierarchical tree structure in which 
unique keys are associated with nodes and leaves, 
having a key set stored therein, the key set consist- 
ing of leaf key corresponding to each leaf of the hi- 
erarchical tree structure and node keys on paths to 
upper layers, 

wherein the information processing method 
comprising a constitution for executing verification 
processing as to whether an entity corresponding 
to a node or a leaf is a revocation entity, which is an 
entity to be revoked, by determining whether or not 
an enabling key block (EKB) including encrypted 
key data resulting from encryption of a ren wal 
node key of the hierarchical tree structure by a sub- 
ordinate node key or a leaf key can be decrypted 
by a stored key set for an entity to be verified, the 
determination as to whether decryption is possible 
or not being executed by trace processing of a key 
location identification tag in the enabling key block 
(EKB) based on an identifier of the entity to be ver- 
ified. 

The information processing method as claimed in 
claim 6 wnerein the identifier of the entity to be ver- 
ified includes position information of the corre- 
sponding node or leaf of the entity in the hierarchical 
tree structure and 

the kev location identification tag in the ena- 
bling ke\ Mock (EKB) is constituted as a tag for 
identifying presence or absence of encrypted 
key dat.i or a subordinate layer of each of the en- 
crypted . jata m the enabling key block (EKB), 
•■ i ♦ rrocessing being executed as the 
: • • ".icing the tag on the basis of the 
• - r -n of the entity in the hierarchical 
• »uded in the identifier of the entity 
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Th- • cessing method as claimed in 

clai~ • . identifier of the entity to be ver- 

ifier • • ™ information of the corre- 

spo~ : ■ ~v of the entity in the hierarchical 

tre- • ' 

" • * ' identification tag in the ena- 

blm : •• . • — ,r- is constituted as a tag for 
iden- \ - ~-ce or absence of encrypted 

key c r • • j nate layer of each of the en- 

crypt- : . ■ enabling key block (EKB), 

t-- >• ~ processing method compris- 
ing exe.w- • : ••"rvnation as to whether the node 
position c »*-v i Mhon corresponding to the entity 
to be venT.-j t?e reached or not by the trace 
processing o 4 tn- tag based on the identifier of the 
entity to be verified, and in case the position cannot 
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be reached, executing determination as to whether 
decryption is possible or not by determining wheth- 
er it belongs to a subordinate layer of a node key 
that is not renewed. 

5 

9. The information processing method as claimed in 
claim 6, wherein the identifier of the entity to be ver- 
ified is an identifier stored in a public key certificate 
of the entity, 

the information processing method compris- 10 
ing acquiring the identifier of the entity to be verified 
from the public key certificate of the entity. 

10. The information processing method as claimed in 
claim 6, wherein in decrypting an encrypted content 15 
provided from an entity corresponding to a node or 
leaf constituting the hierarchical tree structure, 

the identifier of the entity is acquired from a 
public key certificate of the entity and the trace 
processing of the tag of the enabling key block 20 
(EKB) based on the acquired identifier is executed, 
thus determining whether the entity is a revocation 
entity or not and executing decryption processing 
of the encrypted content based on a content encryp- 
tion key Kcon acquired from the enabling key block 25 
(EKB). 

11. A program storage medium for providing a compu- 
ter program which causes a computer system to ex- 
ecute information processing in an information 30 
processing device, associated with respective 
leaves of a hierarchical tree structure in which 
unique keys are associated with nodes and leaves, 
having a key set stored therein, the key set consist- 
ing of leaf key corresponding to each leaf of the hi- 35 
erarchical tree structure and node keys on paths to 
upper layers, 

the computer program stored in the storage 
medium comprising a verification processing step 
as to whether an entity corresponding to a node or *o 
a leaf is a revocation entity as an entity to be re- 
voked, 

the verification processing step including a 
step of execution by determining whether or not an 
enabling key block (EKB) including encrypted key 45 
data resulting from encryption of a renewal node 
key of the hierarchical tree structure by a subordi- 
nate node key or a leaf key can be decrypted by a 
stored key set for an entity to be verified, 

the step of determining whether decryption is so 
possible or not including a step of execution by trace 
processing of a key location identification tag in the 
enabling key block (EKB) based on an identifier of 
the entity to b verified. 
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